Feed aggregator

Article URL: https://www.macrumors.com/2026/06/04/apple-siri-rely-on-google-nvidia-chips/

Comments URL: https://news.ycombinator.com/item?id=48396410

Points: 1

# Comments: 0

So first, what are we? A Clubhouse inside the terminal, where people can take a break, chill, chat with others all around the globe, listen to music, play some games, or paint on a live artboard :).

ssh late.sh (or use the companion CLI)

That's all. No passwords. No OAuth. No accounts. Your SSH key is your identity.

Honestly, I've been a little nervous to post this. I wanted the Clubhouse to be something I'm genuinely proud of before sharing, and I think we are finally there :)

There is so much here, so I'll really try to focus on the core:

- full-scale chat, mentions, rooms, public and private, DMs, reactions, image previews, full-quality images, icon picker, anything you need

- music, hop into the YouTube booth (WebView using wry) to listen to the community playlist, submit, vote, skip, or listen to 600+ server tracks divided into three categories (lofi, ambient, classical)

- games, single and multiplayer, sudoku, minesweeper, tetris, snake, nonograms, poker, blackjack, chess, and much more. Leaderboards and badges! First truly server-wide game is in the PR!

- live artboard, think r/place but in a TUI, draw, paint, or just enjoy. Daily and Monthly snapshots, check them out here: https://late.sh/gallery

- shop, buy a new fully-dynamic bonsai to take care of, or maybe a new aquarium, fill it with ASCII fish, or what about a new pet to play with? Quests, daily and weekly + streaks to help you win more chips

- news, rss/atom feeds, connect your own, share with others, auto-generated summaries with a nice ASCII thumbnail shared globally

- directories, a dedicated space to showcase your projects, another to build your "work" profile, and it all rolls up into your live web profile: https://late.sh/profiles (someone has already been hired thx to it!), and another one for co-op tools, right now a canvas builder inside the TUI

- and the NEWEST addition, VOICE chat :) without a browser!

This has already grown into a team effort. Amazing people, amazing contributions, amazing vibe.

Big ones in the pipeline: more BBS/full-scale server, real-time games :)

Hop in, take a break and enjoy ;)

Code: https://github.com/mpiorowski/late-sh Landing: https://late.sh Demo: https://late.sh/play License: FSL-1.1-MIT

Comments URL: https://news.ycombinator.com/item?id=48396398

Points: 5

# Comments: 2

Article URL: https://www.theverge.com/ai-artificial-intelligence/942629/as-ai-gets-better-it-reveals-an-empty-promise

Comments URL: https://news.ycombinator.com/item?id=48396393

Points: 2

# Comments: 0

We've tested smart sprinklers: Here's why you should have one, and which models proved the best.

Article URL: https://arxiv.org/abs/2605.11325

Comments URL: https://news.ycombinator.com/item?id=48396376

Points: 2

# Comments: 0

Article URL: https://thenewstack.io/nanoclaw-openclaw-agent-security/

Comments URL: https://news.ycombinator.com/item?id=48396375

Points: 1

# Comments: 0

Article URL: https://help.x.com/en/rules-and-policies/authenticity

Comments URL: https://news.ycombinator.com/item?id=48396361

Points: 1

# Comments: 1

Article URL: https://colin-scott.github.io/personal_website/research/interactive_latency.html

Comments URL: https://news.ycombinator.com/item?id=48396189

Points: 1

# Comments: 0

Article URL: https://github.com/Ripthulhu/harmony-hub-root

Comments URL: https://news.ycombinator.com/item?id=48396168

Points: 1

# Comments: 1

Article URL: https://www.heise.de/en/news/Digital-Independence-EU-Plans-Strict-Access-to-State-IT-Structures-11317486.html

Comments URL: https://news.ycombinator.com/item?id=48396137

Points: 3

# Comments: 0

Article URL: https://charitydotwtf.substack.com/p/ai-enthusiasts-are-in-a-race-against

Comments URL: https://news.ycombinator.com/item?id=48396118

Points: 2

# Comments: 0

Article URL: https://learn.microsoft.com/en-us/windows/core-utils/overview

Comments URL: https://news.ycombinator.com/item?id=48396114

Points: 1

# Comments: 1

Article URL: https://www.theregister.com/os-platforms/2026/06/03/grep-this-microsoft-grafts-most-linux-commands-onto-windows/5250796

Comments URL: https://news.ycombinator.com/item?id=48396109

Points: 2

# Comments: 0

Article URL: https://research.giskard.ai/blog/stereotales/

Comments URL: https://news.ycombinator.com/item?id=48396096

Points: 1

# Comments: 0

Customer service chatbots have one job: get the user what they’re asking for without bothering a human. Meta’s new AI support assistant took that brief a little too seriously. Over the past few months, attackers have been opening support chats, telling the bot they were locked out of Instagram accounts they didn’t own, and walking away with the keys.

Over the weekend, Meta pushed an emergency patch after Instagram accounts belonging to the Obama White House (now dormant), beauty retailer Sephora, and a senior US Space Force official were taken over and briefly defaced with pro-Iranian imagery. Security researcher and former Meta employee Jane Manchun Wong was also hit.

How the trick worked

The attack was simple. Attackers worked out where the account owner lived (there are lists of account owners’ home cities online, or they could just research the target). Then they used a VPN to match the target account’s geographic region, which avoided raising flags with Instagram’s security systems.

Then they started a normal password reset and opened the support chat. They asked the AI bot providing support to change the email address on the account, and it did exactly that, sending a one-time code straight to the attacker’s inbox.

To do this, the chatbot appears to have been wired into Meta’s account management systems with permission to make account changes, but without being taught how to verify it was talking to the real account owner. Security people have a name for that: “confused deputy.” The term has been around since the 1980s.

In fairness to the confused bot, attackers were successful even if the enhanced security was triggered. They would apparently create video deepfakes of their targets using images that were harvested from—you guessed it—Instagram.

Meta hoisted on its own AI petard

Meta has been shedding headcount and pouring money into AI, and rolled out its AI-powered support assistant earlier this year to help handle account recovery and other support requests.

The downside is that the AI appears to have been given the ability to perform actions such as email changes and password resets without applying enough safeguards to confirm the user’s identity first.

Meta communications executive Andy Stone said on X that the issue was resolved and impacted accounts were being secured. The company has not disclosed how many accounts were affected.

What actually worked

Why would anyone want to hack an Instagram account anyway? Revenge can be a driver, but more often than not, financial gain is the goal. Hijackers have blackmailed businesses that rely on those accounts for marketing.

Attackers using this technique have also been spotted targeting “OG” accounts with short or highly desirable usernames. If you joined Instagram early and registered a memorable handle, it can be worth thousands of dollars on underground markets.

What can you do to protect yourself?

A perennial piece of advice still holds: turn on multi-factor authentication (MFA). According to veteran cybersecurity reporter Brian Krebs, the attack failed against accounts that had MFA enabled, including those using SMS codes.

That doesn’t make MFA perfect, but it adds an important layer of protection.

So the practical advice is unglamorous:

• Open Instagram’s Settings
• Navigate to your Meta Accounts Center
• Turn on Two-factor authentication. An authenticator app is better than SMS, but either is better than nothing.

Do it now, because this might not yet be over. TheCyberSecGuru reports that another attack is circulating, this time using an Android emulator called BlueStacks running a modified version of Instagram to send new prompts with hidden characters designed to manipulate the AI.

Expect more snafus from “helpful” bots

This won’t be the last attack against AI chatbots. As more companies use AI to reduce customer support costs, their attack surface will grow, and they’ll make plenty of mistakes as they try to balance security and functionality.

The Meta exploit is patched, but the confused deputy concept is not. And there’s nothing quite as damaging as a confused AI with the keys to your digital life.

Scammers don’t need to hack you. They just need you to click once. 

Malwarebytes Identity Theft Protection catches suspicious activity before it becomes a problem.

Article URL: https://xlclick.com/

Comments URL: https://news.ycombinator.com/item?id=48396076

Points: 1

# Comments: 0

Article URL: https://www.exasol.com/blog/train-your-own-llm/

Comments URL: https://news.ycombinator.com/item?id=48396068

Points: 3

# Comments: 0

Article URL: https://www.natesilver.net/p/world-cup-2026-odds-predictions

Comments URL: https://news.ycombinator.com/item?id=48396052

Points: 3

# Comments: 0

Article URL: https://www.linkshort.app/r/pagea.uk/nvidia-stock-thesis

Comments URL: https://news.ycombinator.com/item?id=48396034

Points: 1

# Comments: 1

Article URL: https://komersant.ua/en/rosiiany-skarzhatsia-shcho-z-app-store-raptovo-znyk-mesendzher-maks/

Comments URL: https://news.ycombinator.com/item?id=48396024

Points: 1

# Comments: 0